Wed Feb 8 10:20:20 2023 UTC ()
py-cryptography py-cryptography_vectors: updated to 39.0.1

39.0.1

SECURITY ISSUE - Fixed a bug where Cipher.update_into accepted Python buffer protocol objects, but allowed immutable buffers. CVE-2023-23931
Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.0.8.


(adam)
diff -r1.93 -r1.94 pkgsrc/security/py-cryptography/Makefile
diff -r1.75 -r1.76 pkgsrc/security/py-cryptography/distinfo
diff -r1.37 -r1.38 pkgsrc/security/py-cryptography_vectors/Makefile
diff -r1.37 -r1.38 pkgsrc/security/py-cryptography_vectors/distinfo
cvs diff -r1.93 -r1.94 pkgsrc/security/py-cryptography/Makefile (expand / switch to unified diff)

--- pkgsrc/security/py-cryptography/Makefile 2023/01/11 10:17:19 1.93
+++ pkgsrc/security/py-cryptography/Makefile 2023/02/08 10:20:20 1.94
@@ -1,16 +1,16 @@ @@ -1,16 +1,16 @@
1# $NetBSD: Makefile,v 1.93 2023/01/11 10:17:19 adam Exp $ 1# $NetBSD: Makefile,v 1.94 2023/02/08 10:20:20 adam Exp $
2 2
3DISTNAME= cryptography-39.0.0 3DISTNAME= cryptography-39.0.1
4PKGNAME= ${PYPKGPREFIX}-${DISTNAME} 4PKGNAME= ${PYPKGPREFIX}-${DISTNAME}
5CATEGORIES= security python 5CATEGORIES= security python
6MASTER_SITES= ${MASTER_SITE_PYPI:=c/cryptography/} 6MASTER_SITES= ${MASTER_SITE_PYPI:=c/cryptography/}
7 7
8MAINTAINER= pkgsrc-users@NetBSD.org 8MAINTAINER= pkgsrc-users@NetBSD.org
9HOMEPAGE= https://github.com/pyca/cryptography 9HOMEPAGE= https://github.com/pyca/cryptography
10COMMENT= Cryptographic recipes and primitives for Python 10COMMENT= Cryptographic recipes and primitives for Python
11LICENSE= apache-2.0 OR modified-bsd 11LICENSE= apache-2.0 OR modified-bsd
12 12
13TOOL_DEPENDS+= ${PYPKGPREFIX}-setuptools-rust-[0-9]*:../../devel/py-setuptools-rust 13TOOL_DEPENDS+= ${PYPKGPREFIX}-setuptools-rust-[0-9]*:../../devel/py-setuptools-rust
14DEPENDS+= ${PYPKGPREFIX}-cffi>=1.11.4:../../devel/py-cffi 14DEPENDS+= ${PYPKGPREFIX}-cffi>=1.11.4:../../devel/py-cffi
15DEPENDS+= ${PYPKGPREFIX}-six>=1.4.1:../../lang/py-six 15DEPENDS+= ${PYPKGPREFIX}-six>=1.4.1:../../lang/py-six
16TEST_DEPENDS+= ${PYPKGPREFIX}-cryptography_vectors-[0-9]*:../../security/py-cryptography_vectors 16TEST_DEPENDS+= ${PYPKGPREFIX}-cryptography_vectors-[0-9]*:../../security/py-cryptography_vectors
cvs diff -r1.75 -r1.76 pkgsrc/security/py-cryptography/distinfo (expand / switch to unified diff)

--- pkgsrc/security/py-cryptography/distinfo 2023/01/11 10:17:19 1.75
+++ pkgsrc/security/py-cryptography/distinfo 2023/02/08 10:20:20 1.76
@@ -1,14 +1,14 @@ @@ -1,14 +1,14 @@
1$NetBSD: distinfo,v 1.75 2023/01/11 10:17:19 adam Exp $ 1$NetBSD: distinfo,v 1.76 2023/02/08 10:20:20 adam Exp $
2 2
3BLAKE2s (Inflector-0.11.4.crate) = 2f8b4a805230be3b58267c7fb6b9c26c2ec966378d195673d1128a851cca515d 3BLAKE2s (Inflector-0.11.4.crate) = 2f8b4a805230be3b58267c7fb6b9c26c2ec966378d195673d1128a851cca515d
4SHA512 (Inflector-0.11.4.crate) = f1f6463e033b6d3c16c51dc1e1a3f5569954308b95b59058294b7f9310919bbda797e99e6a07529071bb83f0688867a243997d33795a7136b0af73977004296e 4SHA512 (Inflector-0.11.4.crate) = f1f6463e033b6d3c16c51dc1e1a3f5569954308b95b59058294b7f9310919bbda797e99e6a07529071bb83f0688867a243997d33795a7136b0af73977004296e
5Size (Inflector-0.11.4.crate) = 17438 bytes 5Size (Inflector-0.11.4.crate) = 17438 bytes
6BLAKE2s (aliasable-0.1.3.crate) = daf275d28ba57fd82ca705260295250915598fb14c40227339790f238f061f28 6BLAKE2s (aliasable-0.1.3.crate) = daf275d28ba57fd82ca705260295250915598fb14c40227339790f238f061f28
7SHA512 (aliasable-0.1.3.crate) = a60e4280335638b36a72e51514843229fdd0cc89cb670fcf159f882a687c04ecbddcc52a1dcc3cbe8647e5308af3939037934a157facdddcc4834dcd3cb16dc8 7SHA512 (aliasable-0.1.3.crate) = a60e4280335638b36a72e51514843229fdd0cc89cb670fcf159f882a687c04ecbddcc52a1dcc3cbe8647e5308af3939037934a157facdddcc4834dcd3cb16dc8
8Size (aliasable-0.1.3.crate) = 6169 bytes 8Size (aliasable-0.1.3.crate) = 6169 bytes
9BLAKE2s (android_system_properties-0.1.5.crate) = e405a7701baf9817ca6e946b78ab2ae83f4667112c19c5214606cd863ca5c765 9BLAKE2s (android_system_properties-0.1.5.crate) = e405a7701baf9817ca6e946b78ab2ae83f4667112c19c5214606cd863ca5c765
10SHA512 (android_system_properties-0.1.5.crate) = b09f51339f9772c0e2e4241b36cf51573c6b96b19ffc1fbbc94b1c1d1d2fdfe8eac3134af54174a675ab05d18ef4f6bcb2c7fcc20114bbeef6e17e3692202191 10SHA512 (android_system_properties-0.1.5.crate) = b09f51339f9772c0e2e4241b36cf51573c6b96b19ffc1fbbc94b1c1d1d2fdfe8eac3134af54174a675ab05d18ef4f6bcb2c7fcc20114bbeef6e17e3692202191
11Size (android_system_properties-0.1.5.crate) = 5243 bytes 11Size (android_system_properties-0.1.5.crate) = 5243 bytes
12BLAKE2s (asn1-0.13.0.crate) = 3cb10b1a8652d1aff7c1e26f3624c099d7da46b7f5555085f8b753e70ac2f475 12BLAKE2s (asn1-0.13.0.crate) = 3cb10b1a8652d1aff7c1e26f3624c099d7da46b7f5555085f8b753e70ac2f475
13SHA512 (asn1-0.13.0.crate) = 1c060d380176fcc0a6d95a41f099b70382798a5bd4f6ccf1cc07d725a56eb3e741df084d15d86903ef6a6099c19a54e08bcb35f736d5de239a637c5670e4eda3 13SHA512 (asn1-0.13.0.crate) = 1c060d380176fcc0a6d95a41f099b70382798a5bd4f6ccf1cc07d725a56eb3e741df084d15d86903ef6a6099c19a54e08bcb35f736d5de239a637c5670e4eda3
14Size (asn1-0.13.0.crate) = 34487 bytes 14Size (asn1-0.13.0.crate) = 34487 bytes
@@ -32,29 +32,29 @@ SHA512 (cc-1.0.78.crate) = b85bec4c75cb1 @@ -32,29 +32,29 @@ SHA512 (cc-1.0.78.crate) = b85bec4c75cb1
32Size (cc-1.0.78.crate) = 61375 bytes 32Size (cc-1.0.78.crate) = 61375 bytes
33BLAKE2s (cfg-if-1.0.0.crate) = fbb02f63b24cc224b045ff2aac3aefd0a77cf7b578df4d5f9da9517a59aaf9bb 33BLAKE2s (cfg-if-1.0.0.crate) = fbb02f63b24cc224b045ff2aac3aefd0a77cf7b578df4d5f9da9517a59aaf9bb
34SHA512 (cfg-if-1.0.0.crate) = 0fb16a8882fd30e86b62c5143b1cb18ab564e84e75bd1f28fd12f24ffdc4a42e0d2e012a99abb606c12efe3c11061ff5bf8e24ab053e550ae083f7d90f6576ff 34SHA512 (cfg-if-1.0.0.crate) = 0fb16a8882fd30e86b62c5143b1cb18ab564e84e75bd1f28fd12f24ffdc4a42e0d2e012a99abb606c12efe3c11061ff5bf8e24ab053e550ae083f7d90f6576ff
35Size (cfg-if-1.0.0.crate) = 7934 bytes 35Size (cfg-if-1.0.0.crate) = 7934 bytes
36BLAKE2s (chrono-0.4.23.crate) = 538eedc112b3a58729530283ac9fe28731694390fcaf8c4aee7744d8aee73e8b 36BLAKE2s (chrono-0.4.23.crate) = 538eedc112b3a58729530283ac9fe28731694390fcaf8c4aee7744d8aee73e8b
37SHA512 (chrono-0.4.23.crate) = 697a78ee83eaf38d83011bdf2086b3149b830d3d270e8414828b98ed2426063df43ac6eb4324f2dd694662afb86e6e4f005dee6116dfdd97adaebedefffd43fa 37SHA512 (chrono-0.4.23.crate) = 697a78ee83eaf38d83011bdf2086b3149b830d3d270e8414828b98ed2426063df43ac6eb4324f2dd694662afb86e6e4f005dee6116dfdd97adaebedefffd43fa
38Size (chrono-0.4.23.crate) = 187259 bytes 38Size (chrono-0.4.23.crate) = 187259 bytes
39BLAKE2s (codespan-reporting-0.11.1.crate) = be633c7879fb3d6ea50ceea7fc86d7883446a859cad5dbfac671b4c35b182ded 39BLAKE2s (codespan-reporting-0.11.1.crate) = be633c7879fb3d6ea50ceea7fc86d7883446a859cad5dbfac671b4c35b182ded
40SHA512 (codespan-reporting-0.11.1.crate) = 0869789f5c50d3523d3ee16a8fe64756498a13704efbe82bb0845eaa87c7b6b1d075b3b6b80567cd9fce6cb09c5179e9c07e485fd17ce56c8139ade0f8bc6844 40SHA512 (codespan-reporting-0.11.1.crate) = 0869789f5c50d3523d3ee16a8fe64756498a13704efbe82bb0845eaa87c7b6b1d075b3b6b80567cd9fce6cb09c5179e9c07e485fd17ce56c8139ade0f8bc6844
41Size (codespan-reporting-0.11.1.crate) = 48963 bytes 41Size (codespan-reporting-0.11.1.crate) = 48963 bytes
42BLAKE2s (core-foundation-sys-0.8.3.crate) = 679c01a6f663daba747856f9e5c72ad3f1ef1dafb2f6f7211cc1e1c6637ba049 42BLAKE2s (core-foundation-sys-0.8.3.crate) = 679c01a6f663daba747856f9e5c72ad3f1ef1dafb2f6f7211cc1e1c6637ba049
43SHA512 (core-foundation-sys-0.8.3.crate) = a3ba3184cef65dafe8318c4db7e59eb2749dcde7b2370ad20272b0735ded0032daf2de3fd0cf55eb48448a335f5b81e8e745f2a647f9a43bb85946ce714bfd82 43SHA512 (core-foundation-sys-0.8.3.crate) = a3ba3184cef65dafe8318c4db7e59eb2749dcde7b2370ad20272b0735ded0032daf2de3fd0cf55eb48448a335f5b81e8e745f2a647f9a43bb85946ce714bfd82
44Size (core-foundation-sys-0.8.3.crate) = 17519 bytes 44Size (core-foundation-sys-0.8.3.crate) = 17519 bytes
45BLAKE2s (cryptography-39.0.0.tar.gz) = 5c29049e7bc2fd92fe08ef8869a2378fda9fe4abbe388adac1bd0fb43d14d2e0 45BLAKE2s (cryptography-39.0.1.tar.gz) = fd221a9488898d2f3862c6756492b994cfa03fa95d7d97c29c42b39c94af66a7
46SHA512 (cryptography-39.0.0.tar.gz) = bac0268ca0b6a12adc2d2a1f4ec047aad0643afa021d43574f189187a6a6802bc79e9329afd77a950b158040c85137da4cdee1973f4bb89815ad2203fa969393 46SHA512 (cryptography-39.0.1.tar.gz) = a7df2cc73309b6902a2743273e41c7bec8e0dd0c8160b24edf6554089ca8d160cde7d9007cf45751cb52823c2a6f4a3c437a447292f6e8c06db547d519e98b94
47Size (cryptography-39.0.0.tar.gz) = 603406 bytes 47Size (cryptography-39.0.1.tar.gz) = 603634 bytes
48BLAKE2s (cxx-1.0.85.crate) = cf01448b7650f44b8ef39b5b16577531d9de00eaffc1036fcfc1a7b3cfa6ebc5 48BLAKE2s (cxx-1.0.85.crate) = cf01448b7650f44b8ef39b5b16577531d9de00eaffc1036fcfc1a7b3cfa6ebc5
49SHA512 (cxx-1.0.85.crate) = bf9386f58ea007bcc7171af713e944459a6b219ddbe88813f16df5e274ab85418be23dd7bdaee7964108e9a4a1698365de67362d5504c80bee726f1151166f5c 49SHA512 (cxx-1.0.85.crate) = bf9386f58ea007bcc7171af713e944459a6b219ddbe88813f16df5e274ab85418be23dd7bdaee7964108e9a4a1698365de67362d5504c80bee726f1151166f5c
50Size (cxx-1.0.85.crate) = 589916 bytes 50Size (cxx-1.0.85.crate) = 589916 bytes
51BLAKE2s (cxx-build-1.0.85.crate) = 6564254c09dc9991d71651a5ca8df272ba6cb1b2a47ee0e4f99eca1c3e699144 51BLAKE2s (cxx-build-1.0.85.crate) = 6564254c09dc9991d71651a5ca8df272ba6cb1b2a47ee0e4f99eca1c3e699144
52SHA512 (cxx-build-1.0.85.crate) = 3ef75dc28bed9c1c9cea5dbd7b396f8e88a5fe288e19d1aa1f96add32830236b2414fe33ed7b06566759298cf0130d6b82d2049ba9bf362c95413ce8481f2bf2 52SHA512 (cxx-build-1.0.85.crate) = 3ef75dc28bed9c1c9cea5dbd7b396f8e88a5fe288e19d1aa1f96add32830236b2414fe33ed7b06566759298cf0130d6b82d2049ba9bf362c95413ce8481f2bf2
53Size (cxx-build-1.0.85.crate) = 84820 bytes 53Size (cxx-build-1.0.85.crate) = 84820 bytes
54BLAKE2s (cxxbridge-flags-1.0.85.crate) = 2e72cea8613714c0d6e42af810fb2c06764e1f9d35880efa7f43f1fa1c7b0484 54BLAKE2s (cxxbridge-flags-1.0.85.crate) = 2e72cea8613714c0d6e42af810fb2c06764e1f9d35880efa7f43f1fa1c7b0484
55SHA512 (cxxbridge-flags-1.0.85.crate) = 186a08d40469bfc8fcf801bd766e89e72d160a7b28ce465b3e8a39b4f38d7c17bc373e9bd8f5e50c758be7755ac450d532aa88c7c20d908c3905106bd8cac05c 55SHA512 (cxxbridge-flags-1.0.85.crate) = 186a08d40469bfc8fcf801bd766e89e72d160a7b28ce465b3e8a39b4f38d7c17bc373e9bd8f5e50c758be7755ac450d532aa88c7c20d908c3905106bd8cac05c
56Size (cxxbridge-flags-1.0.85.crate) = 5635 bytes 56Size (cxxbridge-flags-1.0.85.crate) = 5635 bytes
57BLAKE2s (cxxbridge-macro-1.0.85.crate) = 20bf00c32739a5a063e9f6e9776bfc52bcdf7efc2436b60ee891dde28a55209a 57BLAKE2s (cxxbridge-macro-1.0.85.crate) = 20bf00c32739a5a063e9f6e9776bfc52bcdf7efc2436b60ee891dde28a55209a
58SHA512 (cxxbridge-macro-1.0.85.crate) = 7e3e93c5698ff1f6d0a5a40beebb3bac603f3c157afa639f1c5191895680b7d9b2d17494f9b5fa195ff8d42066387a85c166ea28b33415a4a0aff9820d31985e 58SHA512 (cxxbridge-macro-1.0.85.crate) = 7e3e93c5698ff1f6d0a5a40beebb3bac603f3c157afa639f1c5191895680b7d9b2d17494f9b5fa195ff8d42066387a85c166ea28b33415a4a0aff9820d31985e
59Size (cxxbridge-macro-1.0.85.crate) = 59873 bytes 59Size (cxxbridge-macro-1.0.85.crate) = 59873 bytes
60BLAKE2s (iana-time-zone-0.1.53.crate) = bc76b69317387a1427aa749614894a3066e0fd5b1132cefb72022d5eaa4f1a3e 60BLAKE2s (iana-time-zone-0.1.53.crate) = bc76b69317387a1427aa749614894a3066e0fd5b1132cefb72022d5eaa4f1a3e
cvs diff -r1.37 -r1.38 pkgsrc/security/py-cryptography_vectors/Makefile (expand / switch to unified diff)

--- pkgsrc/security/py-cryptography_vectors/Makefile 2023/01/11 10:17:19 1.37
+++ pkgsrc/security/py-cryptography_vectors/Makefile 2023/02/08 10:20:20 1.38
@@ -1,16 +1,16 @@ @@ -1,16 +1,16 @@
1# $NetBSD: Makefile,v 1.37 2023/01/11 10:17:19 adam Exp $ 1# $NetBSD: Makefile,v 1.38 2023/02/08 10:20:20 adam Exp $
2 2
3DISTNAME= cryptography_vectors-39.0.0 3DISTNAME= cryptography_vectors-39.0.1
4PKGNAME= ${PYPKGPREFIX}-${DISTNAME} 4PKGNAME= ${PYPKGPREFIX}-${DISTNAME}
5CATEGORIES= security python 5CATEGORIES= security python
6MASTER_SITES= ${MASTER_SITE_PYPI:=c/cryptography_vectors/} 6MASTER_SITES= ${MASTER_SITE_PYPI:=c/cryptography_vectors/}
7 7
8MAINTAINER= pkgsrc-users@NetBSD.org 8MAINTAINER= pkgsrc-users@NetBSD.org
9HOMEPAGE= https://github.com/pyca/cryptography 9HOMEPAGE= https://github.com/pyca/cryptography
10COMMENT= Cryptographic test vectors 10COMMENT= Cryptographic test vectors
11LICENSE= apache-2.0 OR modified-bsd 11LICENSE= apache-2.0 OR modified-bsd
12 12
13USE_LANGUAGES= # none 13USE_LANGUAGES= # none
14 14
15PYTHON_VERSIONS_INCOMPATIBLE= 27 15PYTHON_VERSIONS_INCOMPATIBLE= 27
16 16
cvs diff -r1.37 -r1.38 pkgsrc/security/py-cryptography_vectors/distinfo (expand / switch to unified diff)

--- pkgsrc/security/py-cryptography_vectors/distinfo 2023/01/11 10:17:19 1.37
+++ pkgsrc/security/py-cryptography_vectors/distinfo 2023/02/08 10:20:20 1.38
@@ -1,5 +1,5 @@ @@ -1,5 +1,5 @@
1$NetBSD: distinfo,v 1.37 2023/01/11 10:17:19 adam Exp $ 1$NetBSD: distinfo,v 1.38 2023/02/08 10:20:20 adam Exp $
2 2
3BLAKE2s (cryptography_vectors-39.0.0.tar.gz) = 4b43f98e7245e3c56a5b288c63d80da009415546e6759e007d73d8925936e220 3BLAKE2s (cryptography_vectors-39.0.1.tar.gz) = c27721ce23be8061f29a2b51dac633c281164f84e4b404c7d29fcb8ebe0d00e9
4SHA512 (cryptography_vectors-39.0.0.tar.gz) = 3030e9ef1a1b33c8229b9123b71193baec11020da9110cc9adb6e8f069ede5bff5d228bb258be1537399c641f242674d1fabd0c99694936cd36342a61efd0581 4SHA512 (cryptography_vectors-39.0.1.tar.gz) = b06585c4ed1fc360165a8801509507a0a546da42cbca80703a173aa55d34f1f9790fc2763c7aef274f479248c57a2e86a56bc098ffb49532cb59132c139eb8af
5Size (cryptography_vectors-39.0.0.tar.gz) = 35275931 bytes 5Size (cryptography_vectors-39.0.1.tar.gz) = 35275870 bytes